Posted 2 weeks ago


Reference Number: 9952954

Research & Development Business Unit has a vacancy for a Cybersecurity Engineer – Security Operations Centre (SOC). Applications are invited from people meeting the qualifications and experience requirements set out below.


A Cybersecurity Engineer Security Operations Centre (SOC) manages all information security threats and responds to incidents by assessing suspicious email, monitoring information security systems, responding to virus infections and malware, performing user access audits, and handling various information security related inquiries.


A Cybersecurity Engineer (SOC) supports the Senior Manager (SM): Security Operations Centre (SOC) in order to:

  • Perform penetration testing and reporting
  • Perform vulnerability scanning and troubleshoot issues arising from vulnerability scanning, and network analysis
  • Support in ensuring and maintaining a clean audit position of the security operations centre
  • Maintain a clean audit position of the Cybersecurity Engineer role and performance
  • Review, audit, test system architecture for compliance with security frameworks, best practices and/or regulatory requirements
  • Model processes including mapping physical layouts and standards
  • Define, implement and maintain business processes and procedures to meet business objectives
  • Administer intrusion detection system (IDS) / intrusion prevention systems (IPS) and honeypots
  • Monitor use of files and regulate access to safeguard information in computer files
  • Test perimeter defences
  • Perform risk assessments of information communication technology (ICT) infrastructure including applications and make recommendations for improvements
  • Create incident response and digital forensics
  • Identify, report, and resolve security violations
  • Review and recommend firewall configurations to secure Internet facing systems
  • Review, analyse security logs generated security systems and take appropriate actions
  • Review, analyse security alerts including vulnerability notices from vendors and other security sources
  • Maintain endpoint security software including anti-virus, firewall, full disk encryption, and other technologies
  • Select and deploy of new security technologies
  • Extract network device topology
  • View threat detection and surveillance
  • View alerts of suspected incidents
  • Review threat and activity reports
  • Create, view and analyse reports on complete network to implement measures to protect environment against rogue devices and/or security risks
  • Update system states, reporting states and notification rules
  • Research blocking and releasing of devices and or other systems
  • Research activities on new technologies, including testing and refining the technologies
  • Perform analysis to validate established security requirements in order to recommend additional security requirements and safeguards
  • Conduct threat modelling exercises
  • Perform security vulnerability analysis and remediation across ICT infrastructures including platforms to ensure confidentiality, integrity, and availability
  • Perform system log analysis
  • Perform network and security audits
  • Use best practice to carry out business process analysis, re-engineering, process measurements and change management activities
  • Periodically conduct a review of each system’s audits and monitors corrective actions until all actions are closed
  • Research, evaluate and recommend new security tools, techniques, and technologies


  • Honours Degree in Computer Science or Information Systems / BTech: Information Technology or related fields. The Candidate should hold an undergraduate qualification (national qualification framework (NQF) level 7) as recognised by South African Qualifications Authority (SAQA).
  • Information technology infrastructure library (ITIL) version 3 / version 4


  • Relevant security or cybersecurity certification would be an advantage


  • At least 8-10 years post qualification experience
  • Analytical skills
  • Software engineering skills
  • Extensive experience in the information and communication technology (ICT) environment
  • Experience implementing security applications including installation, configuration, automation of processes and monitoring
  • A proven record of dealing with complex projects and meeting conflicting demands
  • Demonstrated ability to contribute to strategic and visionary overall business leadership


  • Operations management
  • Business analysis
  • Business development
  • Business process excellence
  • Business management and administration
  • Disciplined agile delivery
  • Agile methodology
  • Service oriented architecture (SOA) and micro-services architecture principles
  • Policy writing
  • Project management
  • Change management
  • Business process analysis
  • Working knowledge and experience of the information security standards                                                  
  • Knowledge of information security principles and practices, including, security risk assessment standards, risk assessment methodologies, and vulnerability assessment 
  • Knowledge of network security
  • ICT portfolio management
  • Supplier / 3rd party management (supply chain)
  • Infrastructure lifecycle management
  • Knowledge of routing and switching methodologies
  • Knowledge of server technologies
  • Knowledge of directory services

To apply, send your application to

NB: All applicants must indicate reference number of the position they are applying for in the subject heading.

Short-listed candidates will be subjected to reference checking, verification of personal data and security clearance as part of the selection process.  In line with Armscor’s commitment to compliance with the Employment Equity Act, preference will be given to suitable candidates from designated groups.  People with disabilities are encouraged to apply.

The closing date for applications is 20 September 2021.  Late applications will not be considered.

Enquiries: Mr. Lekang Mangope (012 428 2119)

Apply Online